smokeloader | 777059bab5c018e5697848a65ca0c01119e570b49126541d0ab00ebea26c147c | Triage

Sharing

General

Target

777059bab5c018e5697848a65ca0c01119e570b49126541d0ab00ebea26c147c
Size

232KB
Sample

240525-w9l9sadg41
MD5

434049987ef1c74520eb864b80855d68
SHA1

abe101b3427dbb27516772febcd8e0fbfffe6042
SHA256

777059bab5c018e5697848a65ca0c01119e570b49126541d0ab00ebea26c147c
SHA512

4798b0589abf9e65f9220944ac78da6c6daf7f52e5cb0b4a622d00b61d2d06c7eaddd3e35176fa315ad3440e64649640c54c9b1505e6fb537520c3af2a6cd656
SSDEEP

6144:qEgPAqKJ4F28koGRdQ2UMYuWTYfjPc1toaCif+uNT:2H7F2HheMMT+stoaNt

Score

10^/10

smokeloader pub1 backdoor trojan

Malware Config

Extracted

Family

smokeloader

Botnet

pub1

Targets

- Target
  
  777059bab5c018e5697848a65ca0c01119e570b49126541d0ab00ebea26c147c
- Size
  
  232KB
- MD5
  
  434049987ef1c74520eb864b80855d68
- SHA1
  
  abe101b3427dbb27516772febcd8e0fbfffe6042
- SHA256
  
  777059bab5c018e5697848a65ca0c01119e570b49126541d0ab00ebea26c147c
- SHA512
  
  4798b0589abf9e65f9220944ac78da6c6daf7f52e5cb0b4a622d00b61d2d06c7eaddd3e35176fa315ad3440e64649640c54c9b1505e6fb537520c3af2a6cd656
- SSDEEP
  
  6144:qEgPAqKJ4F28koGRdQ2UMYuWTYfjPc1toaCif+uNT:2H7F2HheMMT+stoaNt
Score

10^/10

smokeloader pub1 backdoor trojan
- SmokeLoader
  Modular backdoor trojan in use since 2014.
  trojan backdoor smokeloader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

smokeloaderpub1backdoortrojan

behavioral2

smokeloaderpub1backdoortrojan